Chapter 11: Switch Features Flashcards
What is a managed switch?
A switch with an operating system that enables device configuration and can run software that implements additional features.
What does in-band management of a switch mean?
Managing the switch from the same network that moves data, whether you connect locally or remotely.
What is a management port?
A dedicated port on every managed device used for device management.
What does out-of-bound management of a switch mean?
Managing the switch from outside the network, usually via a separate network just for managing and monitoring.
ex. A switch separate from the rest of the network and connected to the dedicated ports of the network switches.
What does flow control do?
It enables the host to send an Ethernet PAUSE frame, which asks the switch to hold up for some amount of time so the host can catch its breath.
What network issue can be caused by flow control?
Latency
What is port security?
It is locking switch ports to a specific MAC address. The port will only work with a specific computer after configuration.
What is sticky or persistent MAC?
In Cisco switches, the MAC addresses can be dynamically learned or manually configured, stored in the address table, and added to the running configuration file.
What does a VLAN (Virtual Local Area Network) enable you to do?
It enables you to segment a physical network into multiple discreet networks without having to add additional hardware by using managed switches.
How do you set up a VLAN on a switch?
By creating one or more VLANs, then assigning ports to those VLANs.
What do you call the process of transferring VLAN traffic between two or more switches?
Trunking
What is a trunk port on a switch?
A port configured to carry all traffic, regardless of VLAN number, between all switches in a LAN.
What is the IEEE trunking protocol used in VLANS that enable you to connect switches from different manufacturers?
802.1Q
A static VLAN assigns VLANS to ____.
ports
A dynamic VLAN assigns VLANS to ____.
MAC addresses
What is an 802.1Q tag field?
A field tacked onto a frame’s Ethernet header enabling the next switch to associate it with the correct VLAN.
A network vulnerability that lets the attacker access VLANs they should not be able to access is called:
double-tagging attack
How do you prevent a double-tagging attack?
By setting the native VLAN to an unused VLAN on truck ports and configuring trunk ports to tag its native VLAN traffic as well.
What does Cisco’s proprietary protocol called VLAN Trunking Protocol (VTP) do?
It automates the updating of multiple VLAN switches. You put the switches into one of three states: server, client, or transparent.
The process of passing traffic between two VLANs using a router (using one or more ports) is called:
inter-VLAN routing
What type of VLAN only allows traffic from private ports to be switched to the uplink trunk port, isolating hosts from each other at Layer 2?
A private VLAN
You can configure any port on a multilayer switch to act as a ____ port or a ____ port.
switch; router
Making multiple servers look like a single server, creating a server cluster, and evenly distributing requests to these servers is called ____.
load balancing
How does DNS performed load balancing work?
Each Web server gets its own public IP address and each DNS server for the domain has multiple “A” records, each with the same fully qualified domain name (FQDN). These “A” records are cycled.
